Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
145s -
max time network
148s -
platform
windows10-2004_x64 -
resource
win10v2004-20240426-en -
resource tags
arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system -
submitted
10/05/2024, 00:02
Static task
static1
Behavioral task
behavioral1
Sample
2c58f00b60e4efeece72902d27a305de_JaffaCakes118.html
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2c58f00b60e4efeece72902d27a305de_JaffaCakes118.html
Resource
win10v2004-20240426-en
General
-
Target
2c58f00b60e4efeece72902d27a305de_JaffaCakes118.html
-
Size
46KB
-
MD5
2c58f00b60e4efeece72902d27a305de
-
SHA1
66f9299eeb04fdfe00f4f09118192515120f7a56
-
SHA256
b6bbbf9574340a305dec46ecb3e8c13d503fa7762a8d4ba31f8b0acab32c5cfc
-
SHA512
0f6847df76a621e25be8d12628dadc8619592e7efe709551c40356584718e9d13f07f6ad970680380ca76c85ca0c23491408f82fb52fb54053656530744d4774
-
SSDEEP
768:r+tzpVP8h2dvwIxrzrqN+VtTqgSjRYCyrusNMJq7N8D77I:rU8h+DHrqN+VtTqtjRc9NUq7Nb
Malware Config
Signatures
-
Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs
flow ioc 11 sites.google.com 16 sites.google.com -
Enumerates system info in registry 2 TTPs 3 IoCs
description ioc Process Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName msedge.exe Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS msedge.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer msedge.exe -
Suspicious behavior: EnumeratesProcesses 10 IoCs
pid Process 3140 msedge.exe 3140 msedge.exe 3332 msedge.exe 3332 msedge.exe 5360 identity_helper.exe 5360 identity_helper.exe 5280 msedge.exe 5280 msedge.exe 5280 msedge.exe 5280 msedge.exe -
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 9 IoCs
pid Process 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe -
Suspicious use of FindShellTrayWindow 25 IoCs
pid Process 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe -
Suspicious use of SendNotifyMessage 24 IoCs
pid Process 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe 3332 msedge.exe -
Suspicious use of WriteProcessMemory 64 IoCs
description pid Process procid_target PID 3332 wrote to memory of 4780 3332 msedge.exe 82 PID 3332 wrote to memory of 4780 3332 msedge.exe 82 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 5648 3332 msedge.exe 83 PID 3332 wrote to memory of 3140 3332 msedge.exe 84 PID 3332 wrote to memory of 3140 3332 msedge.exe 84 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85 PID 3332 wrote to memory of 3276 3332 msedge.exe 85
Processes
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\2c58f00b60e4efeece72902d27a305de_JaffaCakes118.html1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:3332 -
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffab54046f8,0x7ffab5404708,0x7ffab54047182⤵PID:4780
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2116 /prefetch:22⤵PID:5648
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2204 /prefetch:32⤵
- Suspicious behavior: EnumeratesProcesses
PID:3140
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2896 /prefetch:82⤵PID:3276
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3188 /prefetch:12⤵PID:2672
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3204 /prefetch:12⤵PID:6004
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4656 /prefetch:12⤵PID:3716
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4520 /prefetch:12⤵PID:3548
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5432 /prefetch:12⤵PID:3692
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6484 /prefetch:82⤵PID:2828
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6484 /prefetch:82⤵
- Suspicious behavior: EnumeratesProcesses
PID:5360
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6156 /prefetch:12⤵PID:2668
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6172 /prefetch:12⤵PID:1104
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4128 /prefetch:12⤵PID:3872
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5760 /prefetch:12⤵PID:3776
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2104,11059376455708625976,3804141693521154535,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3568 /prefetch:22⤵
- Suspicious behavior: EnumeratesProcesses
PID:5280
-
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:5244
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:3952
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
152B
MD5ae54e9db2e89f2c54da8cc0bfcbd26bd
SHA1a88af6c673609ecbc51a1a60dfbc8577830d2b5d
SHA2565009d3c953de63cfd14a7d911156c514e179ff07d2b94382d9caac6040cb72af
SHA512e3b70e5eb7321b9deca6f6a17424a15b9fd5c4008bd3789bd01099fd13cb2f4a2f37fe4b920fb51c50517745b576c1f94df83efd1a7e75949551163985599998
-
Filesize
152B
MD5f53207a5ca2ef5c7e976cbb3cb26d870
SHA149a8cc44f53da77bb3dfb36fc7676ed54675db43
SHA25619ab4e3c9da6d9cedda7461efdba9a2085e743513ab89f1dd0fd5a8f9486ad23
SHA512be734c7e8afda19f445912aef0d78f9941add29baebd4a812bff27f10a1d78b52aeb11c551468c8644443c86e1a2a6b2e4aead3d7f81d39925e3c20406ac1499
-
Filesize
20KB
MD5b6c8122025aff891940d1d5e1ab95fce
SHA1a0c7ca41d0922d085c358f5dde81ae3e85a8c9c4
SHA2569954c64c68000f615e5066bc255eced1195d1f8b7dbc715f9062ddf9f147e87e
SHA512e62a37b55b6b8d95c24fb624105ff6ff72f118e31760d0da1e8df8e8acf627ec6327c26dfa26df8535585877604c7948d2f621ccabc39beec49787e22c302c10
-
Filesize
59KB
MD503f7b25d3c0dd894cd9c03c410faa1ca
SHA11c7298d3c58109630cc03f1c1360b4b59047064e
SHA256fa2e1ab6e9ab10893f003538a857ab9e792cbbd2df9b7a3a5470001f3c9b8d06
SHA512ae9d0236bde263c57c2b3cddbb925b3a124d410c9189aab42a152becc0b3c6f2d205e2afb027e6d5b7f8f4124e87efa53f58999f9701839888232df4c0b63a6c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
Filesize240B
MD5700047b37af965fbd0d6cec28fa0c84b
SHA16e33dc573adcaf600fdfe555bb3aec29582b7707
SHA256624a48d41485341e723fb21000664405148b0942e69e9d2e833d230a49df3a14
SHA512436f0f2da24fa7356e257cf8eae70d4b083f9958afdbaebf7b53649b6c00f98e271c6483a0997f8cc2a2573094fdabd167703b552bc8b9e3136bd002b272ab67
-
Filesize
1KB
MD562a3f6423a17c975c7b18e9bbc2002b2
SHA11e9b958d2c278b0f4f626bfd8458d101538a5ef0
SHA2565b3874df3a3effd94a7fadd204570d97441a44cc0930ecf9bc9336efc25b1006
SHA5125b4712958174c8033ea5ae07cd34ea28d8e0a6d6271d927afe6b6cd86cbdd1e2697a4e6ef89bb7fa0e4275f2ec527cc2ea5ae48c02e700aae8b6cb6772d5b6bf
-
Filesize
5KB
MD54957a8f93405c2ef565a36af5ac9f0b9
SHA1bde13be1a4ffc28bd533c72b38e29045dafbd304
SHA256703df613a2195a8f3568fa13191a7f07cd6c149c1c8d987cfcddbec5ece092d4
SHA512bcad0e77c98eaa5479e6e08fa734c02211cd7a9d92db4271652612d05628bfb769a046a117ce900c6f22a04eb730e22667135ccbed0132955e93adc5d2630e1e
-
Filesize
7KB
MD5d1f8f17be7ac560e38cb06f659ed6c77
SHA1d8647eb413368f31cc8dd65d46ea24cacfa49c47
SHA2562ef7f77be8916684f902fdfff48035854eeecb2a652486db709742d39d3fe925
SHA5122b815602edcb4db0eebb607b53d8064d9f4f3f65b93069973bd59d86b21e83e8b7d123f43bd255f5436bf3f55d754498f0c5582697d90fabe9df39c533972fe6
-
Filesize
7KB
MD57fe1e0a3d2fbe37b9459f740efba729e
SHA12e13815d522e7ac6f301676eb4d4121609d113c3
SHA256f3db32ce620a071b5514e002d9ea3f0732c5f8ac44c03bf72d5b0bf50f764a17
SHA512b7eaff1f1164f440a4ffe08d7481e2aeee0756c133d6f0d42da083fc24d807775c0b8e11b5b754c4f91e8e6fde4848093c40fab3a9739655e64df068427b51a6
-
Filesize
16B
MD56752a1d65b201c13b62ea44016eb221f
SHA158ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA2560861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA5129cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389
-
Filesize
11KB
MD516c6a28e9792f8b19edb599281af3842
SHA1d365a4e0f00504d76e4871ff8015bca79235d42f
SHA256f0726edb1b82ae4a8d1aab4437af9d8ce93151a062bd3919390048503dfcc682
SHA5120f1f5f82ec4d303ec841c74de493e84cae8b2f6eb4e9769f476d3d86e0a79eb20d8a5d94edd0456feb3d41bf52d06303f0c0771018549281a797415c63992434